The use of infected websites is becoming increasingly popular, according to security researchers.
A post on the Kaspersky Lab’s ‘Threat Post’ claims that one out of every 150 legitimate websites is infected with malware.
Researchers with the Kaspersky Lab have been monitoring around 300,000 legitimate websites over the past few years. Back in 2006, the websites analyzed saw one infected website for every 20,000. However, in 2009, the ratio is one in every 150 is infected with malware. The dramatic increase is, in part, due to SQL injection campaigns that continue to be use by cyber criminals.
Most of the infected websites insert malware onto the computer of the site visitor. The malware then searches the infected computer for login credentials that can be exploited to conduct fraud. The infected computer can also be exploited to store kits and attack tools for other attacks.